192.169.219.139

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
192.169.219.79	attackbotsspam	192.169.219.79 - - [21/Sep/2020:18:36:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2426 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [21/Sep/2020:18:36:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2407 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [21/Sep/2020:18:36:03 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-22 03:09:45
192.169.219.79	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-09-21 18:54:23
192.169.219.79	attackbotsspam	192.169.219.79 - - [31/Aug/2020:04:58:47 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [31/Aug/2020:04:58:50 +0100] "POST /wp-login.php HTTP/1.1" 200 2040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [31/Aug/2020:04:58:52 +0100] "POST /wp-login.php HTTP/1.1" 200 2037 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-31 12:38:52
192.169.219.79	attackspam	192.169.219.79 - - [27/Aug/2020:06:32:43 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [27/Aug/2020:06:32:45 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [27/Aug/2020:06:32:45 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [27/Aug/2020:06:32:51 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [27/Aug/2020:06:32:52 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.169.219.79 - - [27/Aug/2020:06:32:53 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-08-27 14:40:06
192.169.219.79	attackbots	192.169.219.79 - - \[18/Aug/2020:08:46:50 +0200\] "POST /wp-login.php HTTP/1.0" 200 5615 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 192.169.219.79 - - \[18/Aug/2020:08:46:53 +0200\] "POST /wp-login.php HTTP/1.0" 200 5435 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 192.169.219.79 - - \[18/Aug/2020:08:46:55 +0200\] "POST /wp-login.php HTTP/1.0" 200 5428 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-08-18 16:05:04
192.169.219.79	attackbotsspam	C1,WP GET /comic/wp-login.php	2020-08-08 08:25:50
192.169.219.153	attack	[portscan] Port scan	2020-08-04 04:45:08
192.169.219.79	attack	WordPress brute force	2020-08-02 08:52:35
192.169.219.72	attackbots	Automatic report - Banned IP Access	2020-06-15 22:31:49
192.169.219.72	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-24 15:51:28
192.169.219.72	attack	Automatic report - XMLRPC Attack	2020-05-12 15:04:18
192.169.219.72	attackbots	xmlrpc attack	2020-04-29 19:41:13
192.169.219.72	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-04-16 13:49:16
192.169.219.72	attack	CMS (WordPress or Joomla) login attempt.	2020-04-14 17:10:55
192.169.219.226	attack	login failure for user root from 192.169.219.226 via ssh	2020-02-25 17:38:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.169.219.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6822
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.169.219.139.		IN	A

;; AUTHORITY SECTION:
.			310	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 21:23:43 CST 2022
;; MSG SIZE  rcvd: 108

Host info

139.219.169.192.in-addr.arpa domain name pointer ip-192-169-219-139.ip.secureserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.219.169.192.in-addr.arpa	name = ip-192-169-219-139.ip.secureserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.99.56.117	attack	Apr 8 02:31:12 vps sshd[31201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.56.117 Apr 8 02:31:14 vps sshd[31201]: Failed password for invalid user test7 from 192.99.56.117 port 41338 ssh2 Apr 8 02:33:26 vps sshd[31317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.56.117 ...	2020-04-08 09:41:42
136.49.109.217	attack	Apr 7 21:29:40 ny01 sshd[13982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.49.109.217 Apr 7 21:29:42 ny01 sshd[13982]: Failed password for invalid user postgres from 136.49.109.217 port 34818 ssh2 Apr 7 21:33:11 ny01 sshd[14377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.49.109.217	2020-04-08 09:49:59
128.199.212.82	attack	CMS (WordPress or Joomla) login attempt.	2020-04-08 12:00:56
177.135.93.227	attackspambots	SSH Invalid Login	2020-04-08 09:43:56
185.255.46.9	attack	Time: Wed Apr 8 00:50:18 2020 -0300 IP: 185.255.46.9 (IQ/Iraq/-) Failures: 20 (WordPressBruteForcePOST) Interval: 3600 seconds Blocked: Permanent Block	2020-04-08 12:05:09
116.75.168.218	attack	$f2bV_matches	2020-04-08 09:55:45
96.92.113.85	attack	Apr 8 03:28:19 vmd17057 sshd[13725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.92.113.85 Apr 8 03:28:21 vmd17057 sshd[13725]: Failed password for invalid user testing from 96.92.113.85 port 38354 ssh2 ...	2020-04-08 10:01:05
159.65.84.164	attackbots	Apr 7 19:33:33 server1 sshd\[6996\]: Invalid user dreambox from 159.65.84.164 Apr 7 19:33:33 server1 sshd\[6996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.84.164 Apr 7 19:33:35 server1 sshd\[6996\]: Failed password for invalid user dreambox from 159.65.84.164 port 47998 ssh2 Apr 7 19:39:10 server1 sshd\[8821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.84.164 user=postgres Apr 7 19:39:12 server1 sshd\[8821\]: Failed password for postgres from 159.65.84.164 port 56166 ssh2 ...	2020-04-08 09:47:33
185.220.100.240	attack	DATE:2020-04-08 06:00:24, IP:185.220.100.240, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-04-08 12:02:15
171.100.209.114	attackbots	SSH Invalid Login	2020-04-08 09:44:49
163.172.247.10	attack	Apr 8 03:38:19 tuxlinux sshd[55435]: Invalid user test from 163.172.247.10 port 37828 Apr 8 03:38:19 tuxlinux sshd[55435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.247.10 Apr 8 03:38:19 tuxlinux sshd[55435]: Invalid user test from 163.172.247.10 port 37828 Apr 8 03:38:19 tuxlinux sshd[55435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.247.10 Apr 8 03:38:19 tuxlinux sshd[55435]: Invalid user test from 163.172.247.10 port 37828 Apr 8 03:38:19 tuxlinux sshd[55435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.247.10 Apr 8 03:38:21 tuxlinux sshd[55435]: Failed password for invalid user test from 163.172.247.10 port 37828 ssh2 ...	2020-04-08 09:46:00
193.254.135.252	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-08 09:40:45
203.150.243.165	attack	Apr 8 sshd[5471]: Invalid user test from 203.150.243.165 port 58104	2020-04-08 09:37:50
185.220.101.198	attackbotsspam	DATE:2020-04-08 06:00:18, IP:185.220.101.198, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-04-08 12:09:18
49.234.52.176	attackbotsspam	Apr 7 17:56:40 web1 sshd\[12915\]: Invalid user user from 49.234.52.176 Apr 7 17:56:40 web1 sshd\[12915\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.52.176 Apr 7 17:56:42 web1 sshd\[12915\]: Failed password for invalid user user from 49.234.52.176 port 48562 ssh2 Apr 7 18:00:17 web1 sshd\[13298\]: Invalid user rust from 49.234.52.176 Apr 7 18:00:17 web1 sshd\[13298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.52.176	2020-04-08 12:10:31

Recently Reported IPs

192.169.220.85	153.228.164.2	192.169.220.245	192.169.218.8
192.169.221.188	192.169.220.223	192.169.213.186	192.169.223.13
192.169.226.175	192.169.226.102	192.169.226.87	192.169.226.38
192.169.233.149	192.169.231.168	192.169.232.43	192.169.233.110
192.169.227.2	192.169.231.54	192.169.235.144	192.169.233.194